1 // SPDX-License-Identifier: BSD-2-Clause
2 /* LibTomCrypt, modular cryptographic library -- Tom St Denis
3  *
4  * LibTomCrypt is a library that provides various cryptographic
5  * algorithms in a highly modular and flexible manner.
6  *
7  * The library is free for all purposes without any express
8  * guarantee it works.
9  */
10 #include "tomcrypt_private.h"
11 
12 /**
13   @file omac_test.c
14   OMAC1 support, self-test, by Tom St Denis
15 */
16 
17 #ifdef LTC_OMAC
18 
19 /**
20   Test the OMAC setup
21   @return CRYPT_OK if successful, CRYPT_NOP if tests have been disabled
22 */
omac_test(void)23 int omac_test(void)
24 {
25 #if !defined(LTC_TEST)
26     return CRYPT_NOP;
27 #else
28     static const struct {
29         int keylen, msglen;
30         unsigned char key[16], msg[64], tag[16];
31     } tests[] = {
32     { 16, 0,
33       { 0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6,
34         0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c },
35       { 0x00 },
36       { 0xbb, 0x1d, 0x69, 0x29, 0xe9, 0x59, 0x37, 0x28,
37         0x7f, 0xa3, 0x7d, 0x12, 0x9b, 0x75, 0x67, 0x46 }
38     },
39     { 16, 16,
40       { 0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6,
41         0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c },
42       { 0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96,
43         0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a },
44       { 0x07, 0x0a, 0x16, 0xb4, 0x6b, 0x4d, 0x41, 0x44,
45         0xf7, 0x9b, 0xdd, 0x9d, 0xd0, 0x4a, 0x28, 0x7c }
46     },
47     { 16, 40,
48       { 0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6,
49         0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c },
50       { 0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96,
51         0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a,
52         0xae, 0x2d, 0x8a, 0x57, 0x1e, 0x03, 0xac, 0x9c,
53         0x9e, 0xb7, 0x6f, 0xac, 0x45, 0xaf, 0x8e, 0x51,
54         0x30, 0xc8, 0x1c, 0x46, 0xa3, 0x5c, 0xe4, 0x11 },
55       { 0xdf, 0xa6, 0x67, 0x47, 0xde, 0x9a, 0xe6, 0x30,
56         0x30, 0xca, 0x32, 0x61, 0x14, 0x97, 0xc8, 0x27 }
57     },
58     { 16, 64,
59       { 0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6,
60         0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c },
61       { 0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96,
62         0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a,
63         0xae, 0x2d, 0x8a, 0x57, 0x1e, 0x03, 0xac, 0x9c,
64         0x9e, 0xb7, 0x6f, 0xac, 0x45, 0xaf, 0x8e, 0x51,
65         0x30, 0xc8, 0x1c, 0x46, 0xa3, 0x5c, 0xe4, 0x11,
66         0xe5, 0xfb, 0xc1, 0x19, 0x1a, 0x0a, 0x52, 0xef,
67         0xf6, 0x9f, 0x24, 0x45, 0xdf, 0x4f, 0x9b, 0x17,
68         0xad, 0x2b, 0x41, 0x7b, 0xe6, 0x6c, 0x37, 0x10 },
69       { 0x51, 0xf0, 0xbe, 0xbf, 0x7e, 0x3b, 0x9d, 0x92,
70         0xfc, 0x49, 0x74, 0x17, 0x79, 0x36, 0x3c, 0xfe }
71     }
72 
73     };
74     unsigned char out[16];
75     int x, err, idx;
76     unsigned long len;
77 
78 
79     /* AES can be under rijndael or aes... try to find it */
80     if ((idx = find_cipher("aes")) == -1) {
81        if ((idx = find_cipher("rijndael")) == -1) {
82           return CRYPT_NOP;
83        }
84     }
85 
86     for (x = 0; x < (int)(sizeof(tests)/sizeof(tests[0])); x++) {
87        len = sizeof(out);
88        if ((err = omac_memory(idx, tests[x].key, tests[x].keylen, tests[x].msg, tests[x].msglen, out, &len)) != CRYPT_OK) {
89           return err;
90        }
91 
92        if (compare_testvector(out, len, tests[x].tag, sizeof(tests[x].tag), "OMAC", x) != 0) {
93           return CRYPT_FAIL_TESTVECTOR;
94        }
95     }
96     return CRYPT_OK;
97 #endif
98 }
99 
100 #endif
101 
102 /* ref:         $Format:%D$ */
103 /* git commit:  $Format:%H$ */
104 /* commit time: $Format:%ai$ */
105